$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adbd4db-9c77-456a-9a38-aae1df82a18a.roa File: 4adbd4db-9c77-456a-9a38-aae1df82a18a.roa (raw, json) Hash identifier: UJ5oOSKldFsCfjR+mBeEu/KU4RhOu0NnGagJXpVLBfk= Subject key identifier: D4:FB:4C:A3:FD:1E:CE:42:A4:D2:40:14:34:B5:B6:7B:64:E0:AE:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A34FA00BDF1C5169EC9B32B95E10DAF28229AF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adbd4db-9c77-456a-9a38-aae1df82a18a.roa Signing time: Tue 22 Apr 2025 17:00:28 +0000 ROA not before: Tue 22 Apr 2025 17:00:28 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1b:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:34:fa:00:bd:f1:c5:16:9e:c9:b3:2b:95:e1:0d:af:28:22:9a:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:00:28 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=a2637da32a5740b009211ca2e38fd58288ee994e084c372f8a6b923a098b192f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3f:f1:3c:24:98:c6:7a:cd:62:43:a4:70:b4: cd:3d:1c:b9:74:e6:5f:dc:7c:23:c2:8f:f7:3d:c8: d9:ac:25:2a:72:c3:5b:ab:1c:44:68:ba:16:37:4e: 5e:ff:91:b7:57:8a:97:c4:08:cd:5d:03:02:a6:fc: 51:63:94:68:d5:a0:97:34:be:d9:91:0e:21:51:0d: 17:be:2a:08:eb:fe:ba:78:1a:af:68:24:70:5c:d4: 70:e3:43:34:f7:df:30:33:bd:7a:a2:0b:10:06:f8: e6:65:ec:bf:46:1e:d9:e1:f6:52:ba:04:a0:92:3c: 3f:8f:a1:3d:51:31:78:d3:64:12:f6:36:d2:ba:27: 31:6d:35:aa:80:0e:44:f6:0a:46:01:c3:89:0f:34: cc:eb:0d:6a:61:21:d1:7a:a6:8c:b5:d7:04:1b:c8: d9:52:2b:70:6d:74:c0:db:6d:1c:7e:33:31:07:9a: 36:b7:0e:07:60:d0:d5:03:e7:87:df:53:f9:5e:e9: 35:04:0f:88:ae:de:c7:9a:48:dd:7b:b3:25:7a:12: d2:de:fc:27:11:3b:c2:a3:08:52:b3:01:22:73:63: d4:99:c1:15:04:e9:0a:39:3b:b5:f9:b0:f0:1c:6c: 4e:16:65:df:ab:bb:c7:ff:88:14:eb:df:a4:83:47: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FB:4C:A3:FD:1E:CE:42:A4:D2:40:14:34:B5:B6:7B:64:E0:AE:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adbd4db-9c77-456a-9a38-aae1df82a18a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1b:4000::/37 Signature Algorithm: sha256WithRSAEncryption 1e:12:9c:e8:8d:d3:27:6b:d7:ea:f7:8b:8d:34:7a:39:2b:cf: 7d:ee:6a:a1:cc:49:dd:f2:a3:d4:14:d9:18:83:b1:18:d2:46: e4:6f:30:c1:05:75:1f:87:f3:05:f0:8f:e0:f3:8c:ef:b8:b2: c7:a2:07:e9:18:4b:a4:82:35:aa:d9:69:22:79:27:90:13:5e: 27:b5:bd:19:4d:e5:c1:c1:70:c4:56:db:eb:dd:ec:ac:b6:54: 03:92:1b:ca:d1:0c:5a:df:43:72:9d:28:9b:8c:5f:d5:b9:69: 71:d4:a8:ca:70:6f:f1:cf:18:e2:4b:c1:c6:d0:d0:ab:da:28: 31:bf:be:59:0a:8a:82:8e:00:15:f3:2f:ac:09:36:ec:34:ca: 2b:c2:29:0a:d6:51:1e:70:2f:b0:a2:86:63:a5:53:19:61:96: c0:97:ef:a0:69:42:42:9a:fc:3b:19:d3:13:ec:84:24:0f:48: 85:a0:ef:f3:e1:10:1d:ab:9c:35:1f:6b:e7:4a:94:02:91:3e: de:3a:82:6f:e6:46:34:e7:37:14:4f:81:eb:78:ca:da:bb:b7: 89:47:a4:8d:7b:9f:86:13:5e:c8:8e:4b:2c:10:a4:50:ca:9a: f6:73:73:3b:34:4f:81:c4:02:6a:a2:dc:00:cf:82:8c:86:52: 8c:ad:7e:f3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGjT6AL3xxRaeybMrleENrygimvAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTcwMDI4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjYzN2RhMzJhNTc0MGIwMDkyMTFjYTJlMzhmZDU4Mjg4 ZWU5OTRlMDg0YzM3MmY4YTZiOTIzYTA5OGIxOTJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmP/E8JJjGes1iQ6RwtM09HLl05l/cfCPCj/c9yNmsJSpy w1urHERouhY3Tl7/kbdXipfECM1dAwKm/FFjlGjVoJc0vtmRDiFRDRe+Kgjr/rp4 Gq9oJHBc1HDjQzT33zAzvXqiCxAG+OZl7L9GHtnh9lK6BKCSPD+PoT1RMXjTZBL2 NtK6JzFtNaqADkT2CkYBw4kPNMzrDWphIdF6poy11wQbyNlSK3BtdMDbbRx+MzEH mja3Dgdg0NUD54ffU/le6TUED4iu3seaSN17syV6EtLe/CcRO8KjCFKzASJzY9SZ wRUE6Qo5O7X5sPAcbE4WZd+ru8f/iBTr36SDR1eDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1PtMo/0ezkKk0kAUNLW2e2TgrrEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhZGJkNGRiLTljNzctNDU2YS05YTM4LWFhZTFkZjgyYTE4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8bQDANBgkqhkiG9w0BAQsFAAOCAQEAHhKc6I3TJ2vX6veLjTR6OSvP fe5qocxJ3fKj1BTZGIOxGNJG5G8wwQV1H4fzBfCP4POM77iyx6IH6RhLpII1qtlp InknkBNeJ7W9GU3lwcFwxFbb693srLZUA5IbytEMWt9Dcp0om4xf1blpcdSoynBv 8c8Y4kvBxtDQq9ooMb++WQqKgo4AFfMvrAk27DTKK8IpCtZRHnAvsKKGY6VTGWGW wJfvoGlCQpr8OxnTE+yEJA9IhaDv8+EQHaucNR9r50qUApE+3jqCb+ZGNOc3FE+B 63jK2ru3iUekjXufhhNeyI5LLBCkUMqa9nNzOzRPgcQCaqLcAM+CjIZSjK1+8w== -----END CERTIFICATE-----Generated at Sat Apr 26 18:37:06 2025 by rpki-client